Disable SHA-2 ciphersuites in < TLS 1.2 connections. (TLS 1.2 clients could end up negotiating these with an OpenSSL server with TLS 1.2 disabled, which is problematic.) Submitted by: Adam Langley

commit: d3ddf0228e1977e5328277d751774bc9f9d385d8 [log] [tgz]
author: Bodo Möller <bodo@openssl.org> Tue Apr 17 15:23:03 2012 +0000
committer: Bodo Möller <bodo@openssl.org> Tue Apr 17 15:23:03 2012 +0000
tree: e2c409f7e8a2da9248c3b9b1195f6ffcfc1f5a9e
parent: 800e1cd969f5c89f142857f63416b44ab063fb1b [diff] [blame]
diff --git a/CHANGES b/CHANGES
index 6bd5420..1611dbe 100644
--- a/CHANGES
+++ b/CHANGES

@@ -291,6 +291,9 @@
   
  Changes between 1.0.1 and 1.0.1a [xx XXX xxxx]
 
+  *) Don't allow TLS 1.2 SHA-256 ciphersuites in TLS 1.0, 1.1 connections.
+     [Adam Langley]
+
   *) Workarounds for some broken servers that "hang" if a client hello
      record length exceeds 255 bytes:
commit	d3ddf0228e1977e5328277d751774bc9f9d385d8	[log] [tgz]
author	Bodo Möller <bodo@openssl.org>	Tue Apr 17 15:23:03 2012 +0000
committer	Bodo Möller <bodo@openssl.org>	Tue Apr 17 15:23:03 2012 +0000
tree	e2c409f7e8a2da9248c3b9b1195f6ffcfc1f5a9e
parent	800e1cd969f5c89f142857f63416b44ab063fb1b [diff] [blame]